SAMA IT Governance Framework
SAMA IT Governance Framework (الدليل التنظيمي لحوكمة تقنية المعلومات)
Overview
SAMA IT Governance Framework (الدليل التنظيمي لحوكمة تقنية المعلومات)
Framework Domains (4)
This framework is organized into 4 domain(s) covering 35 controls total.
Domain 1: IT Governance and Leadership
Establishes the governance structure, strategy, policies, roles, regulatory compliance, audit, training, and performance management for IT within the financial institution.
Domain 2: IT Risk Management
Covers the identification, analysis, treatment, reporting, and monitoring of IT risks within the financial institution.
Domain 3: Operations Management
Governs IT asset management, service levels, availability, data centres, networks, batch processing, incident management, problem management, backup, and virtualisation for the financial institution.
Domain 4: System Change Management
Governs system change governance, requirements, acquisition, development, testing, security, release, configuration, patch management, project management, and quality assurance.
Detailed control mapping and audit workflows are available in the Framework Browser demo.
Ready to audit?
Use ArabAudit to run structured assessments against this framework, map evidence automatically, and generate regulator-ready reports.